projects / platform / kernel / linux-starfive.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 8a75a2c)
netfilter: conntrack: avoid unconditional local_bh_disable
authorFlorian Westphal <fw@strlen.de>
Mon, 11 Apr 2022 11:01:25 +0000 (13:01 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 13 May 2022 16:56:27 +0000 (18:56 +0200)
Now that the conntrack entry isn't placed on the pcpu list anymore the
bh only needs to be disabled in the 'expectation present' case.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_conntrack_core.c patch | blob | history

diff --git a/net/netfilter/nf_conntrack_core.c b/net/netfilter/nf_conntrack_core.c
index de1547a..22492f7 100644 (file)
--- a/net/netfilter/nf_conntrack_core.c
+++ b/net/netfilter/nf_conntrack_core.c
@@ -1736,10 +1736,9 @@ init_conntrack(struct net *net, struct nf_conn *tmpl,
                                 ecache ? ecache->expmask : 0,
                             GFP_ATOMIC);
 
-       local_bh_disable();
        cnet = nf_ct_pernet(net);
        if (cnet->expect_count) {
-               spin_lock(&nf_conntrack_expect_lock);
+               spin_lock_bh(&nf_conntrack_expect_lock);
                exp = nf_ct_find_expectation(net, zone, tuple);
                if (exp) {
                        pr_debug("expectation arrives ct=%p exp=%p\n",
@@ -1762,7 +1761,7 @@ init_conntrack(struct net *net, struct nf_conn *tmpl,
 #endif
                        NF_CT_STAT_INC(net, expect_new);
                }
-               spin_unlock(&nf_conntrack_expect_lock);
+               spin_unlock_bh(&nf_conntrack_expect_lock);
        }
        if (!exp)
                __nf_ct_try_assign_helper(ct, tmpl, GFP_ATOMIC);
@@ -1770,8 +1769,6 @@ init_conntrack(struct net *net, struct nf_conn *tmpl,
        /* Now it is going to be associated with an sk_buff, set refcount to 1. */
        refcount_set(&ct->ct_general.use, 1);
 
-       local_bh_enable();
-
        if (exp) {
                if (exp->expectfn)
                        exp->expectfn(ct, exp);
Domain: System / Kernel;